Overview

File _patchinfo of Package patchinfo.1467

<patchinfo>
  <issue id="809153" tracker="bnc">VUL-0: CVE-2013-0287: sssd: simple access provider flaw prevents intended ACL use when client to an AD provider</issue>
  <issue id="CVE-2013-0287" tracker="cve" />
  <category>security</category>
  <rating>moderate</rating>
  <packager>rhafer</packager>
  <description>
When SSSD is configured as an Active Directory client by using the
new Active Directory provider or equivalent configuration of the LDAP
provider, the Simple Access Provider does not handle access control
correctly. If any groups are specified with the simple_deny_groups
option, the group members are permitted access. (CVE-2013-0287)
</description>
  <summary>sssd: fixed some access control management issues</summary>
</patchinfo>
openSUSE Build Service is sponsored by
Places